VulnerableCode Package Details - pkg:deb/debian/trafficserver@0?distro=sid

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-376v-6shk-8ycq	Apache Traffic Server before 2.0.1, and 2.1.x before 2.1.2-unstable, does not properly choose DNS source ports and transaction IDs, and does not properly use DNS query fields to validate responses, which makes it easier for man-in-the-middle attackers to poison the internal DNS cache via a crafted response.	CVE-2010-2952
VCID-61q8-wyrp-rycg	Improper Input Validation vulnerability in accepting socket connections in Apache Traffic Server allows an attacker to make the server stop accepting new connections. This issue affects Apache Traffic Server 5.0.0 to 9.1.0.	CVE-2021-41585
VCID-8ta5-mh5e-cfft	Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in the stats-over-http plugin of Apache Traffic Server allows an attacker to overwrite memory. This issue affects Apache Traffic Server 9.1.0.	CVE-2021-43082
VCID-by94-r8f3-z3fs	Apache Traffic Server 9.0.0 is vulnerable to a remote DOS attack on the experimental Slicer plugin.	CVE-2021-27737
VCID-fvbh-59fu-cfb6	Improper Input Validation vulnerability for the xdebug plugin in Apache Software Foundation Apache Traffic Server can lead to cross site scripting and cache poisoning attacks.This issue affects Apache Traffic Server: 9.0.0 to 9.1.3. Users should upgrade to 9.1.4 or later versions.	CVE-2022-40743
VCID-gqeq-hqf6-abh9	Improper Access Control vulnerability in Apache Traffic Server. This issue affects Apache Traffic Server: from 10.0.0 through 10.0.3. Users are recommended to upgrade to version 10.0.4, which fixes the issue.	CVE-2024-56196
VCID-has1-mf68-q3am	Improper Input Validation vulnerability in Apache Traffic Server with malformed HTTP/2 frames.This issue affects Apache Traffic Server: from 9.0.0 through 9.2.2. Users are recommended to upgrade to version 9.2.3, which fixes the issue.	CVE-2023-39456

Vulnerability

Summary

Aliases

VCID-376v-6shk-8ycq

Apache Traffic Server before 2.0.1, and 2.1.x before 2.1.2-unstable, does not properly choose DNS source ports and transaction IDs, and does not properly use DNS query fields to validate responses, which makes it easier for man-in-the-middle attackers to poison the internal DNS cache via a crafted response.

CVE-2010-2952

VCID-61q8-wyrp-rycg

Improper Input Validation vulnerability in accepting socket connections in Apache Traffic Server allows an attacker to make the server stop accepting new connections. This issue affects Apache Traffic Server 5.0.0 to 9.1.0.

CVE-2021-41585

VCID-8ta5-mh5e-cfft

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in the stats-over-http plugin of Apache Traffic Server allows an attacker to overwrite memory. This issue affects Apache Traffic Server 9.1.0.

CVE-2021-43082

VCID-by94-r8f3-z3fs

Apache Traffic Server 9.0.0 is vulnerable to a remote DOS attack on the experimental Slicer plugin.

CVE-2021-27737

VCID-fvbh-59fu-cfb6

Improper Input Validation vulnerability for the xdebug plugin in Apache Software Foundation Apache Traffic Server can lead to cross site scripting and cache poisoning attacks.This issue affects Apache Traffic Server: 9.0.0 to 9.1.3. Users should upgrade to 9.1.4 or later versions.

CVE-2022-40743

VCID-gqeq-hqf6-abh9

Improper Access Control vulnerability in Apache Traffic Server. This issue affects Apache Traffic Server: from 10.0.0 through 10.0.3. Users are recommended to upgrade to version 10.0.4, which fixes the issue.

CVE-2024-56196

VCID-has1-mf68-q3am

Improper Input Validation vulnerability in Apache Traffic Server with malformed HTTP/2 frames.This issue affects Apache Traffic Server: from 9.0.0 through 9.2.2. Users are recommended to upgrade to version 9.2.3, which fixes the issue.

CVE-2023-39456

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T13:27:39.823470+00:00	Debian Importer	Fixing	VCID-gqeq-hqf6-abh9	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T11:49:50.691073+00:00	Debian Importer	Fixing	VCID-fvbh-59fu-cfb6	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:13:28.471797+00:00	Debian Importer	Fixing	VCID-by94-r8f3-z3fs	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T10:10:19.551315+00:00	Debian Importer	Fixing	VCID-376v-6shk-8ycq	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:36:52.170022+00:00	Debian Importer	Fixing	VCID-61q8-wyrp-rycg	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T09:25:23.671178+00:00	Debian Importer	Fixing	VCID-8ta5-mh5e-cfft	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T08:53:47.505625+00:00	Debian Importer	Fixing	VCID-has1-mf68-q3am	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T09:17:19.385271+00:00	Debian Importer	Fixing	VCID-gqeq-hqf6-abh9	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:04:24.633283+00:00	Debian Importer	Fixing	VCID-fvbh-59fu-cfb6	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:52:27.301321+00:00	Debian Importer	Fixing	VCID-by94-r8f3-z3fs	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T06:50:04.235826+00:00	Debian Importer	Fixing	VCID-376v-6shk-8ycq	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:24:03.843319+00:00	Debian Importer	Fixing	VCID-61q8-wyrp-rycg	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T18:17:20.251496+00:00	Debian Importer	Fixing	VCID-8ta5-mh5e-cfft	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-11T17:58:11.158365+00:00	Debian Importer	Fixing	VCID-has1-mf68-q3am	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-03T07:55:35.152556+00:00	Debian Importer	Fixing	VCID-gqeq-hqf6-abh9	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:55:34.613961+00:00	Debian Importer	Fixing	VCID-has1-mf68-q3am	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:55:34.225020+00:00	Debian Importer	Fixing	VCID-fvbh-59fu-cfb6	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:55:33.818138+00:00	Debian Importer	Fixing	VCID-8ta5-mh5e-cfft	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:55:33.771193+00:00	Debian Importer	Fixing	VCID-61q8-wyrp-rycg	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:55:33.376065+00:00	Debian Importer	Fixing	VCID-by94-r8f3-z3fs	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-03T07:55:32.266773+00:00	Debian Importer	Fixing	VCID-376v-6shk-8ycq	https://security-tracker.debian.org/tracker/data/json	38.1.0